[27759] in bugtraq
RE: Motorola Cable Modem DOS
daemon@ATHENA.MIT.EDU (Fulton Preston)
Fri Nov 8 04:07:25 2002
From: "Fulton Preston " <fulton@prestons.org>
To: "'Juraj Ziegler'" <e@hq.sk>, "'Ryan Sweat'" <rsweat@attbi.com>,
<bugtraq@securityfocus.com>
Date: Tue, 5 Nov 2002 22:27:33 -0500
MIME-Version: 1.0
Message-ID: <001e01c28544$7263ab00$6464a8c0@CARTMAN>
Content-Type: multipart/signed;
micalg=SHA1;
protocol="application/x-pkcs7-signature";
boundary="----=_NextPart_000_0019_01C2851A.88E8B070"
In-Reply-To: <20021104100615.GB9849@hq.sk>
------=_NextPart_000_0019_01C2851A.88E8B070
Content-Type: text/plain;
charset="US-ASCII"
Content-Transfer-Encoding: 7bit
All,
I too have a Motorola Surfboard 4200, not sure of revision/firmware
number, but whenever I have www.securityspace.com do a "basic scan" of
my system, my Motorola modem locks up hard and I have to power cycle it
to get it back. It locks up before my IDS can detect anything so
something is up with these cable modems.
-----Original Message-----
From: Juraj Ziegler [mailto:e@hq.sk]
Sent: Monday, November 04, 2002 05:06
To: Ryan Sweat
Subject: Re: Motorola Cable Modem DOS
On Wed, Oct 30, 2002 at 02:02:27PM -0600, Ryan Sweat wrote:
> I've found it trivial to crash the Motorola Surfboard 4200 Cable
modem,
> as installed default by AT&T Broadband Internet.
>
> The modem acts as a bridge, but also has an internal RFC1918 IP
address
> (192.168.100.1). Simply nmap'ing the cable user's IP address, ie:
> # nmap -sS -p 1-1024 12.x.x.x
> will cause it to crash, rendering the ethernet interface useless. It
is
> also possible to crash it from the lan by simply doing the same scan
> against the cable modem's internal IP address. The crash is not
> specific to nmap, there are other publicly available tools which cause
> the same result. This is known to be effective on Software Version:
> SB4200-0.4.4.0-SCM06-NOSH. (possibly others?)
Nothing happens to a SB4200E-0.4.4.1-SCM04-NOSH. Everything works fine
after a scan.
[e]
--
________________________________________________________________________
_______
>e@hq.sk< /(bb|[^b]{2})/
>http://hq.sk/~euro<
"Programming today is a race between software engineers striving to
build bigger and better idiot-proof programs, and the Universe
trying
to produce bigger and better idiots. So far, the Universe is
winning."
--
Rich Cook
------=_NextPart_000_0019_01C2851A.88E8B070
Content-Type: application/x-pkcs7-signature;
name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="smime.p7s"
MIAGCSqGSIb3DQEHAqCAMIACAQExCzAJBgUrDgMCGgUAMIAGCSqGSIb3DQEHAQAAoIIKFDCCAj0w
ggGmAhEAzbp/VvDf5LxU/iKss3KqVTANBgkqhkiG9w0BAQIFADBfMQswCQYDVQQGEwJVUzEXMBUG
A1UEChMOVmVyaVNpZ24sIEluYy4xNzA1BgNVBAsTLkNsYXNzIDEgUHVibGljIFByaW1hcnkgQ2Vy
dGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNOTYwMTI5MDAwMDAwWhcNMjgwODAxMjM1OTU5WjBfMQsw
CQYDVQQGEwJVUzEXMBUGA1UEChMOVmVyaVNpZ24sIEluYy4xNzA1BgNVBAsTLkNsYXNzIDEgUHVi
bGljIFByaW1hcnkgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwgZ8wDQYJKoZIhvcNAQEBBQADgY0A
MIGJAoGBAOUZv22jVmEtmUhx9mfeuY3rt56GgAqRDvo4Ja9GiILlc6igmyRdDR/MZW4MsNBWhBiH
mgabEKFz37RYOWtuwfYV1aioP6oSBo0xrH+wNNePNGeICc0UEeJORVZpH3gCgNrcR5EpuzbJY1zF
4Ncth3uhtzKwezC6Ki8xqu6jZ9rbAgMBAAEwDQYJKoZIhvcNAQECBQADgYEATD+4i8Zo3+5DMw5d
6abLB4RNejP/khv0Nq3YlSI2aBFsfELM85wuxAc/FLAPT/+Qknb54rxK6Y/NoIAK98Up8YIiXbix
3YEjo3slFUYweRb46gVLlH8dwhzI47f0EEA8E8NfH1PoSOSGtHuhNbB7Jbq4046rPzidADQAmPPR
cZQwggNiMIICy6ADAgECAhAL2gsXwT+JjqsJdHq0zi4zMA0GCSqGSIb3DQEBAgUAMF8xCzAJBgNV
BAYTAlVTMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjE3MDUGA1UECxMuQ2xhc3MgMSBQdWJsaWMg
UHJpbWFyeSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw05ODA1MTIwMDAwMDBaFw0wODA1MTIy
MzU5NTlaMIHMMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1
c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNv
cnAuIEJ5IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJ
bmRpdmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMIGfMA0GCSqGSIb3DQEB
AQUAA4GNADCBiQKBgQC7WkSKBBa7Vf0DeootlE8VeDa4DUqyb5xUv7zodyqdufBou5XZMUFweoFL
uUgTVi3HCOGEQqvAopKrRFyqQvCCDgLpL/vCO7u+yScKXbawNkIztW5UiE+HSr8Z2vkV6A+Hthzj
zMaajn9qJJLj/OBluqexfu/J2zdqyErICQbkmQIDAQABo4GwMIGtMA8GA1UdEwQIMAYBAf8CAQAw
RwYDVR0gBEAwPjA8BgtghkgBhvhFAQcBATAtMCsGCCsGAQUFBwIBFh93d3cudmVyaXNpZ24uY29t
L3JlcG9zaXRvcnkvUlBBMDEGA1UdHwQqMCgwJqAkoCKGIGh0dHA6Ly9jcmwudmVyaXNpZ24uY29t
L3BjYTEuY3JsMAsGA1UdDwQEAwIBBjARBglghkgBhvhCAQEEBAMCAQYwDQYJKoZIhvcNAQECBQAD
gYEAAn2eb0VLOKC43ulTZCG85Ewrjx7+kkCs2Ao5aqEyISwHm6tZ/tJiGn1VOLA3c9z0B2ZjYr3h
U3BSh+eo2FLpWy2q4d7PrDFU1IsZyNgjqO8EKzJ9LBgcyHyJqC538kTRZQpNdLXu0xuSc3QuiTs1
E3LnQDGa07LEq+dWvovj+xUwggRpMIID0qADAgECAhABbAfhRJYiV3LG++2oiCftMA0GCSqGSIb3
DQEBBAUAMIHMMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1
c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNv
cnAuIEJ5IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJ
bmRpdmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkMB4XDTAyMDczMTAwMDAw
MFoXDTAzMDczMTIzNTk1OVowggENMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMW
VmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0
b3J5L1JQQSBJbmNvcnAuIGJ5IFJlZi4sTElBQi5MVEQoYyk5ODEeMBwGA1UECxMVUGVyc29uYSBO
b3QgVmFsaWRhdGVkMTQwMgYDVQQLEytEaWdpdGFsIElEIENsYXNzIDEgLSBNaWNyb3NvZnQgRnVs
bCBTZXJ2aWNlMQ8wDQYDVQQDFAZGdWx0b24xIjAgBgkqhkiG9w0BCQEWE2Z1bHRvbkBwcmVzdG9u
cy5vcmcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAK/C/p7Tj4wFWyLcIJIV/5fm0dNIInzX
8iP4JSk/OYjkuzrq479b+fyma7TRJpV/gWIfGjrJhu9527ImUd5XzIWjIgSq9L/Ijlq7+mlw+zMU
rIBHfBN7eGhi0gIBFl6nWddf2TdlAzwOI/gykZi1j1q7pdCaHKMI+4JZcTeBajupAgMBAAGjggEG
MIIBAjAJBgNVHRMEAjAAMIGsBgNVHSAEgaQwgaEwgZ4GC2CGSAGG+EUBBwEBMIGOMCgGCCsGAQUF
BwIBFhxodHRwczovL3d3dy52ZXJpc2lnbi5jb20vQ1BTMGIGCCsGAQUFBwICMFYwFRYOVmVyaVNp
Z24sIEluYy4wAwIBARo9VmVyaVNpZ24ncyBDUFMgaW5jb3JwLiBieSByZWZlcmVuY2UgbGlhYi4g
bHRkLiAoYyk5NyBWZXJpU2lnbjARBglghkgBhvhCAQEEBAMCB4AwMwYDVR0fBCwwKjAooCagJIYi
aHR0cDovL2NybC52ZXJpc2lnbi5jb20vY2xhc3MxLmNybDANBgkqhkiG9w0BAQQFAAOBgQBReEzH
oA6AX5TtwcoyNG3lGu2JizJyJJIFbLD4gYmon2lCat3MGNz10RBQHAud13O0HbAy+yH2Ib+2lH15
CfUMp54Bq3Tf5jaGJ74SPeHxH1mAbo2sqc7jIDm1K1jt0KWTQmq35SF4WQdK00KtPGtfVCR9Mexq
4MJDpl9tIkA6tDGCBD4wggQ6AgEBMIHhMIHMMRcwFQYDVQQKEw5WZXJpU2lnbiwgSW5jLjEfMB0G
A1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UECxM9d3d3LnZlcmlzaWduLmNvbS9y
ZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5IFJlZi4sTElBQi5MVEQoYyk5ODFIMEYGA1UEAxM/VmVy
aVNpZ24gQ2xhc3MgMSBDQSBJbmRpdmlkdWFsIFN1YnNjcmliZXItUGVyc29uYSBOb3QgVmFsaWRh
dGVkAhABbAfhRJYiV3LG++2oiCftMAkGBSsOAwIaBQCgggKyMBgGCSqGSIb3DQEJAzELBgkqhkiG
9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTAyMTEwNjAzMjczM1owIwYJKoZIhvcNAQkEMRYEFHUDCzZP
NNJ3u9th9RXFFiv4RP0eMGcGCSqGSIb3DQEJDzFaMFgwCgYIKoZIhvcNAwcwBwYFKw4DAhowDgYI
KoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMAoGCCqG
SIb3DQIFMIHyBgkrBgEEAYI3EAQxgeQwgeEwgcwxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8w
HQYDVQQLExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMUYwRAYDVQQLEz13d3cudmVyaXNpZ24uY29t
L3JlcG9zaXRvcnkvUlBBIEluY29ycC4gQnkgUmVmLixMSUFCLkxURChjKTk4MUgwRgYDVQQDEz9W
ZXJpU2lnbiBDbGFzcyAxIENBIEluZGl2aWR1YWwgU3Vic2NyaWJlci1QZXJzb25hIE5vdCBWYWxp
ZGF0ZWQCEAFsB+FEliJXcsb77aiIJ+0wgfQGCyqGSIb3DQEJEAILMYHkoIHhMIHMMRcwFQYDVQQK
Ew5WZXJpU2lnbiwgSW5jLjEfMB0GA1UECxMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazFGMEQGA1UE
CxM9d3d3LnZlcmlzaWduLmNvbS9yZXBvc2l0b3J5L1JQQSBJbmNvcnAuIEJ5IFJlZi4sTElBQi5M
VEQoYyk5ODFIMEYGA1UEAxM/VmVyaVNpZ24gQ2xhc3MgMSBDQSBJbmRpdmlkdWFsIFN1YnNjcmli
ZXItUGVyc29uYSBOb3QgVmFsaWRhdGVkAhABbAfhRJYiV3LG++2oiCftMA0GCSqGSIb3DQEBAQUA
BIGAK2+ZD5xN7IfSnx6ULBL1tkUA5NH89frDuJmMSpwyDzteAGW30G29ArFmAi1Jrd7s7OlBJD0b
EzZWVh3MF7eXRFRQOynYOYbHkroBQfXcB9Mgld8L/9hnKpM/DF5Ha7lTws8KRFeOXaIGjiEj1YCB
HigTtU0p35JifEHTg/DdY5EAAAAAAAA=
------=_NextPart_000_0019_01C2851A.88E8B070--
